Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Trojan/Malware difficulties

BIGROD

Posted 13 February 2008 - 08:40 PM

BIGROD

Member

Member

87 posts

My PC is running very slow right now. I know I have a trojan(s) but can't pinpoint and remove. Spybot, Window Washer, or CCleaner aren't able to single out whatever's infecting the system. Any help is appreciated.

New symptom today -

When I try to access any of my hard drives (external and internal) I get a message asking me how I wish to open the file, as if it's a program I'm trying to access and not my drive.

Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear.

The utility may ask you to insert your flash drive and/or other removable drives including your mobile phone. Please do so and allow the utility to clean up those drives as well.

Wait until it has finished scanning and then exit the program.

Reboot your computer when done.

Note: Flash_Disinfector will create a hidden folder named autorun.inf in each partition and every USB drive plugged in when you ran it. Don't delete this folder...it will help protect your drives from future infection.===========================Then :Download ComboFix from one of the locations below, and save it to your Desktop.

Double click combofix.exe and follow the prompts. Please, never rename Combofix unless instructed.When finished, it shall produce a log for you. Post that log and a HiJackthis log in your next replyNote: Do not mouseclick combofix's window while its running. That may cause it to stall

Return to OTMoveIt2, right click in the "Paste List Of Files/Patterns To Search For and Move" window (under the yellow bar) and choose Paste.
===========================
Let me know if you can noew open your drives correctly and how things are running also please post a new Hijackthis log along with the OTMove it 2 log.

Click the red Moveit! button.

A log of files and folders moved will be created in the c:\_OTMoveIt\MovedFiles folder in the form of Date and Time (mmddyyyy_hhmmss.log). Please open this log in Notepad and post its contents in your next reply.

Close OTMoveIt2

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

kahdah

Posted 17 February 2008 - 04:49 PM

kahdah

GeekU Teacher

Retired Staff

15,822 posts

Actually those are already deleted they are just in the system restore cache and in combofix quarantine uninstalling Combofix will clean the System Restore points and remove the Combofix quarantine.=========================Please update your Java: Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version of Java components and upgrade the application. Beware it is NOT supported for use in 9x or ME and probably will not install in those systems